Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
File: nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft (raw, json)
Hash identifier: NpthfF18zNFSTWxixmlm5mUrIEdjtmHPGgxfK9rmdjE=
Subject key identifier: E7:B8:91:FE:A0:7E:47:0A:27:3B:59:14:94:F4:51:13:3B:1A:0D:7F
Authority key identifier: 9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF
Certificate issuer: /CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
Certificate serial: 01965BA79564A61208C05D657F05431FFA9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
Manifest number: 148F
Signing time: Tue 22 Apr 2025 04:00:31 +0000
Manifest this update: Tue 22 Apr 2025 04:00:31 +0000
Manifest next update: Wed 23 Apr 2025 04:00:31 +0000
Files and hashes: 1: nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl (hash: GQUtaxJnfxJVzMejdH0jVhExWFTdJNpqWfZoD6XAqcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:a7:95:64:a6:12:08:c0:5d:65:7f:05:43:1f:fa:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
Validity
Not Before: Apr 22 04:00:31 2025 GMT
Not After : Apr 23 04:00:31 2025 GMT
Subject: CN=e7b891fea07e470a273b591494f451133b1a0d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d7:86:65:08:1a:69:9b:06:31:08:01:d4:5a:
41:3f:90:65:ad:d2:dd:45:b9:09:3a:ba:d9:14:da:
3c:8e:26:b9:00:23:38:41:63:f0:42:8f:d2:01:5d:
3c:6a:69:f9:ea:be:e7:54:b3:d4:36:aa:20:42:e7:
d2:36:1c:59:13:3b:7b:c4:4c:f5:53:7e:6f:dc:41:
78:90:ea:97:3c:97:0f:34:81:bb:e8:7c:f1:f1:e4:
87:e1:ff:ac:ca:dd:ad:f2:01:54:ba:6e:47:08:66:
05:08:49:6c:b4:cf:93:3d:0b:db:ca:13:99:d2:07:
f0:18:c9:e1:03:31:e7:dd:d8:a4:9c:11:d9:25:48:
8a:82:28:12:21:83:f3:98:a3:2c:d7:86:68:67:52:
f9:b8:38:af:3f:0a:fe:79:75:75:83:8c:b7:65:c9:
f6:81:3e:e0:3d:8f:45:d1:dd:fd:31:8d:2b:bb:21:
a6:48:6f:3e:46:2c:f6:e0:26:85:d4:57:c9:80:13:
c4:c9:ba:b6:a8:c3:9a:d6:1c:00:51:d1:14:77:4c:
07:67:46:cf:a1:8b:42:eb:92:40:b8:e5:bd:6f:b1:
e4:11:f6:96:14:11:6a:26:79:85:df:c6:67:ad:83:
e6:17:7d:bf:a5:ff:4b:3d:e3:44:02:26:de:cb:23:
61:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B8:91:FE:A0:7E:47:0A:27:3B:59:14:94:F4:51:13:3B:1A:0D:7F
X509v3 Authority Key Identifier:
keyid:9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:19:9f:c7:57:33:4b:fe:10:38:b1:5f:3f:65:15:e8:0a:d8:
86:be:fd:51:6b:e5:98:11:5d:04:3a:01:fd:54:eb:5d:6b:80:
0a:d0:53:dd:5a:c5:f5:64:17:9b:a3:a3:b8:ff:55:b9:db:25:
24:37:71:5c:80:78:a5:fd:af:1d:8a:ee:d5:b2:b8:42:66:a0:
d2:00:ad:40:a5:ae:ad:10:1f:0a:df:e8:79:0f:37:bf:cf:30:
5e:64:fd:74:32:d7:1c:e7:7c:25:2a:0a:cc:00:fd:b8:97:35:
a3:3b:08:9c:7a:5f:8f:9c:23:61:8c:50:9d:df:f7:14:05:aa:
7b:35:84:da:ef:7e:6f:c1:05:e0:d1:e7:dc:cc:41:ee:a6:a0:
96:59:9a:ee:e5:87:98:b7:12:c6:b7:44:c5:19:60:f7:a9:72:
57:14:d0:0e:37:eb:a3:6a:34:c2:b0:98:4d:06:57:7d:18:27:
9e:68:08:5c:96:f5:91:dd:74:08:46:3b:bb:26:25:2c:e8:e8:
aa:32:b4:a9:b0:08:e5:06:d5:19:a4:3e:06:02:b6:d4:fc:50:
35:23:b8:3e:06:92:18:55:8f:9f:df:7d:aa:38:83:58:db:27:
10:d9:65:b1:b8:1c:54:00:76:f8:b0:fd:a5:10:dc:27:ef:8b:
50:8e:36:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:34:47 2025 by rpki-client